I am a webmaster working for a company that is about to launch a new version of its website. I am responsible for almost everything. So far, so good. We use Google DFP to serve ads on our site. We don’t show Google ads at the moment, but instead we sell ad slots to our customers and use dfp to handle all this. The fact is that I somehow see at home some advertisements on our new site. They should not be, because we disabled them. However, I noticed that I only see ads when I'm at home and not at work. So I did a little research. I use Google Chrome, and I noticed that there are some scripts that are NOT DEFINED from my site or google (dfp). But instead, there are some random scenarios that I really don’t know where they came from.
Since I saw some scripts that were strange but familiar, I soon realized that these were scripts from my installed extensions! Thus, basically, the “free” chrome extension does run some ad scripts and publishes them on the ad spaces originally set for google. Is this some kind of browser hijacking, is this a known issue? Does google allow it? Because if so, then I never install another extension ... I deleted them, and now I do not see any other ads that are not my clients, so I know that the problem was really due to the installed extensions. The worst part is that they take precedence over my ads, and I never could have guessed that these ads were not from the site I was visiting,but since they appeared on my site, I noticed ... this is outrageous. The guy who came up with this idea, I think, gets a lot of money from it ... Is it that I live under a rock, and is it common knowledge / practice these days?
In any case, google should know about it, if they have not done so already, and do something. Allowing javascript for extensions without first checking them is clearly dangerous.
Thank.
source
share